This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft File: y7aOmQU8HeJHirvi3_KrzsDRsUg.mft (raw, json) Hash identifier: Ndgqp/GUQUWsCVRAr7JK/uQgQniaxKWvRHYfJfbXHYA= Subject key identifier: E2:5A:A6:28:35:B8:49:54:6F:9A:EC:86:35:D6:B5:0F:D2:33:EA:04 Authority key identifier: CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 Certificate issuer: /CN=A9149905/serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Certificate serial: 34F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft Manifest number: 34F1 Signing time: Sat 20 Dec 2025 14:52:34 +0000 Manifest this update: Sat 20 Dec 2025 14:52:34 +0000 Manifest next update: Sat 27 Dec 2025 14:52:34 +0000 Files and hashes: 1: y7aOmQU8HeJHirvi3_KrzsDRsUg.crl (hash: dw6uvNDxOwqcjAkbVrx9tRmFk9QJst5vtMNAjAMgoeM=) 2: A6D6CA7E022C11EBAC47A831C4F9AE02.roa (hash: w/zPMK06vnyoVLL/BGNp77uAUStxaD44YXARWWRfkvk=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 14:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13559 (0x34f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149905, serialNumber=CBB68E99053C1DE2478ABBE2DFF2ABCEC0D1B148 Validity Not Before: Dec 20 14:52:34 2025 GMT Not After : Dec 27 14:52:34 2025 GMT Subject: CN=6946b832-aeee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ed:b9:62:3e:eb:4f:01:a4:33:6e:ca:ce:ff: a6:a6:3c:63:10:12:92:15:18:00:aa:8f:48:5b:a1: 6d:cd:59:ea:e5:37:4d:96:28:27:82:4d:ab:2a:5f: ac:14:77:1c:ff:2e:40:da:93:6a:5c:c9:70:d5:aa: 50:85:17:cd:63:d8:f7:7c:71:bf:54:ff:83:65:6e: 1f:8e:c9:7a:76:50:16:db:80:e8:47:6d:75:cc:3d: 20:26:f5:fa:6e:45:5c:ac:a6:9f:6b:50:d0:41:3b: e0:d3:9b:a6:31:01:12:7c:69:4d:c4:01:27:24:27: 80:0c:3f:e4:1b:6e:ce:a8:d8:b7:b8:a1:c6:77:62: f9:1d:14:7c:54:a1:69:81:71:b7:1d:3d:22:02:1d: 51:51:bc:81:b8:15:ac:55:cf:ad:c6:40:41:11:71: 25:05:6e:f6:fb:df:d0:44:c0:88:9c:d8:8a:0f:3e: 03:54:4c:ca:36:2c:f9:8e:a5:44:50:e8:3b:5b:f0: dd:65:99:c7:aa:5b:3c:e3:a4:87:7b:f7:41:61:9c: fb:17:e3:82:3a:6e:5b:c5:0d:fc:50:d2:cf:50:24: b5:ef:b7:27:90:19:29:d4:d5:b9:89:66:c6:f7:3d: 27:ab:e8:1f:34:55:64:63:b8:6d:e2:93:fd:a3:72: 71:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:5A:A6:28:35:B8:49:54:6F:9A:EC:86:35:D6:B5:0F:D2:33:EA:04 X509v3 Authority Key Identifier: keyid:CB:B6:8E:99:05:3C:1D:E2:47:8A:BB:E2:DF:F2:AB:CE:C0:D1:B1:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y7aOmQU8HeJHirvi3_KrzsDRsUg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149905/394D064A1D9B11E2BE12EF8808B02CD2/y7aOmQU8HeJHirvi3_KrzsDRsUg.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:9b:78:77:8b:b4:aa:6f:5c:db:2e:8c:e3:43:76:09:50:f7: 85:31:a0:4c:58:30:ea:f7:78:54:db:76:ff:45:3a:96:40:7b: 43:78:f7:dc:2f:91:bb:f1:38:f2:6d:50:a2:73:2e:db:35:10: ce:31:02:1d:44:48:39:0d:89:aa:02:46:3e:36:46:81:07:a5: ca:df:f0:13:ef:6e:d8:83:18:51:5d:26:2f:29:72:b6:ef:ab: 63:00:c7:3d:8e:53:8f:00:d2:61:93:a0:4a:8d:31:ac:84:39: ab:07:2f:ab:15:a3:92:b3:1a:e4:b6:cd:18:b4:17:ce:70:1b: 56:31:37:a4:1b:d8:c6:71:ad:b5:d0:a5:da:75:7b:3d:ac:18: 81:3b:9d:3e:d6:2b:39:48:9b:55:6c:1b:70:94:1b:03:f9:24: f3:fe:50:f2:1c:0a:c2:fb:50:78:75:ad:59:9f:89:55:20:16: 14:6a:47:1a:15:2b:f2:f5:6a:79:0e:a2:df:44:2e:46:ad:9d: bb:d0:1d:63:79:f0:5a:7c:10:fe:46:d8:c2:14:57:c9:b5:8c: ec:d8:11:52:6a:07:2e:a0:4a:50:66:64:c3:5f:49:b6:19:88: 3a:c0:eb:f1:86:e3:18:01:6e:62:66:69:37:8a:62:ac:b0:b9: ec:2d:bb:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5MDUxMTAvBgNVBAUTKENCQjY4RTk5MDUzQzFERTI0NzhBQkJFMkRGRjJBQkNF QzBEMUIxNDgwHhcNMjUxMjIwMTQ1MjM0WhcNMjUxMjI3MTQ1MjM0WjAYMRYwFAYD VQQDDA02OTQ2YjgzMi1hZWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze25Yj7rTwGkM27Kzv+mpjxjEBKSFRgAqo9IW6FtzVnq5TdNligngk2rKl+s FHcc/y5A2pNqXMlw1apQhRfNY9j3fHG/VP+DZW4fjsl6dlAW24DoR211zD0gJvX6 bkVcrKafa1DQQTvg05umMQESfGlNxAEnJCeADD/kG27OqNi3uKHGd2L5HRR8VKFp gXG3HT0iAh1RUbyBuBWsVc+txkBBEXElBW72+9/QRMCInNiKDz4DVEzKNiz5jqVE UOg7W/DdZZnHqls846SHe/dBYZz7F+OCOm5bxQ38UNLPUCS177cnkBkp1NW5iWbG 9z0nq+gfNFVkY7ht4pP9o3JxoQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFOJapig1 uElUb5rshjXWtQ/SM+oEMB8GA1UdIwQYMBaAFMu2jpkFPB3iR4q74t/yq87A0bFI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTkwNS8zOTREMDY0QTFE OUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhlSkhpcnZpM19LcnpzRFJz VWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3k3YU9tUVU4SGVKSGlydmkzX0tyenNEUnNVZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTkwNS8zOTREMDY0QTFEOUIxMUUyQkUxMkVGODgwOEIwMkNEMi95N2FPbVFVOEhl SkhpcnZpM19LcnpzRFJzVWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQB4m3h3i7Sqb1zbLozjQ3YJUPeFMaBMWDDq93hU23b/RTqWQHtDePfc L5G78TjybVCicy7bNRDOMQIdREg5DYmqAkY+NkaBB6XK3/AT727YgxhRXSYvKXK2 76tjAMc9jlOPANJhk6BKjTGshDmrBy+rFaOSsxrkts0YtBfOcBtWMTekG9jGca21 0KXadXs9rBiBO50+1is5SJtVbBtwlBsD+STz/lDyHArC+1B4da1Zn4lVIBYUakca FSvy9Wp5DqLfRC5GrZ270B1jefBafBD+RtjCFFfJtYzs2BFSagcuoEpQZmTDX0m2 GYg6wOvxhuMYAW5iZmk3imKssLnsLbsw -----END CERTIFICATE-----Generated at Sat Dec 20 23:59:27 2025 by rpki-client